Whitehat Bandit
@banditx0x
Security Researcher @OpenZeppelin Whitehat Initiate @ImmuneFi
You might like
What are some good learning materials or frameworks to start building an AI auditing agent or audit assistant?
After the 1 week @RareSkills_io bootcamp I can convert tweets into ZK Circuits 🫡
Here's a ZK Circuit in Circom to check whether you are qualified to DM @nisedo_ Input your skills (1 indicates you have this skill, 0 to indicate you don't) and the output shows whether you can DM Nisdeo. zkrepl.dev/?gist=6e1b9e77…
RareWeek -- where lead auditors at tier-1 firms study.
This isn’t an exaggeration — RareSkills is education at the highest level. For RareWeek ZK, I was very intentional about making the learning aspect efficient: - regular use of recall exercises to enforce memorization of key ideas - lots of hands-on practice with rapid feedback…
Jane Street's India options trade is a price oracle exploit but you only get banned instead of arrested once caught.
It’s really competitive getting into an audit firm nowadays 👀
We have manually reviewed all the applications and will be sending out 20 interview invites soon. To give an idea of the quality, the people who have made the cut have had 50+ H/M bugs in audit contests, multiple top finishes, private audit portfolio.
Cork protocol also had a bug bounty on Cantina with a max bounty that was <1% of funds at risk. It makes me think that the exploiter found the issue when hunting bug bounties and preferred taking $12m illegally over maybe getting a 100k bounty.
So he steals 12M, observes the whole drama AND then comments on it 😅 I’m wondering who that is now .. the chance is very high we all know him
AMM’s aren’t complex enough, let’s add another dimension
Orbital extends concentrated liquidity to pools of three or more stables by drawing tick boundaries as orbits around the $1 equal price point. Unlike 2D concentrated AMMs, even if one stablecoin depegs to 0, an Orbital tick can still use its reserves to trade the others. 4/8
Which lending protocol is forked more often? Compound or Aave?
109 vote · Final results
Theres a common misconception that AMM spot price manipulation attacks require low liquidity pools. Swapping to an imbalanced price, doing some exploit with the manipulated price, then swapping back only costs the swap fee.
Uniswap V2 LP tokens are ERC4626 tokens that are comprised of 2 assets. ERC4626 tokens maintain a consistent asset/share ratio upon deposits and withdrawals. Rewards can be distributed to shareholders by increasing assets without increasing the number of shares. In Uniswap V2,…
One of the most well known bugs is the ERC4626 first depositor inflation attack. It's so common that it would earn $0.00 when reported in a public contest. The bug actually exploits a really cool bug pattern and understanding this pattern can be used to discover unique high…
Yesterday's complete hack of Wise Lending was far more complex than reported. Very worth examining. The protocol had added explicit defenses against this style of attack, which the attack then either bypassed or used against the protocol. 🧵 1/21
United States Trends
- 1. Chiefs 101K posts
- 2. Branch 29.3K posts
- 3. Mahomes 30.7K posts
- 4. #TNABoundForGlory 50K posts
- 5. #LoveCabin N/A
- 6. LaPorta 10K posts
- 7. Goff 13.3K posts
- 8. Bryce Miller 4,201 posts
- 9. Kelce 15.6K posts
- 10. #OnePride 6,283 posts
- 11. Dan Campbell 3,288 posts
- 12. #LaGranjaVIP 45.9K posts
- 13. #DETvsKC 4,810 posts
- 14. Butker 8,334 posts
- 15. Mariners 47.9K posts
- 16. Pacheco 4,870 posts
- 17. Gibbs 5,498 posts
- 18. Baker 53.7K posts
- 19. collinsworth 2,911 posts
- 20. Mike Santana 3,953 posts
You might like
-
Michael
@mmay3r -
James Pierce
@RealJamesPierce -
The Compound
@TheCompoundNews -
Eugene Wei
@eugenewei -
Siddha Performance
@KapilGuptaMD -
Erik Torenberg
@eriktorenberg -
Kpaxs
@Kpaxs -
Mungerisms • Charlie Munger Bot
@CharlieBot -
Aloe Vera
@elloevera -
Angela Jiang
@angjiang -
Ascendant Power
@AscendantPower -
Puneet Kumar
@puneetiitm -
Laderiaa
@deethemusee -
Aashay Sanghvi
@aashaysanghvi_ -
Fateh Singh
@Fateh_Shernu
Something went wrong.
Something went wrong.